9.3
CVE-2007-0947
- EPSS 31.97%
- Veröffentlicht 08.05.2007 23:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:36
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Use-after-free vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2, Windows Server 2003 SP1 or SP2, or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects, resulting in accessing deallocated memory of CMarkup objects, aka the second of two "HTML Objects Memory Corruption Vulnerabilities" and a different issue than CVE-2007-0946.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Internet Explorer Version7.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 31.97% | 0.981 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.securityfocus.com/archive/1/468871/100/200/threaded
http://www.us-cert.gov/cas/techalerts/TA07-128A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-027
http://secunia.com/advisories/23769
http://www.securitytracker.com/id?1018019
http://www.vupen.com/english/advisories/2007/1712
http://secunia.com/secunia_research/2007-36/advisory/
http://www.osvdb.org/34403
http://www.securityfocus.com/bid/23772
https://exchange.xforce.ibmcloud.com/vulnerabilities/33256
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2048